[zeugma]

In reference to this FreeRepublic post, concerning a browser vulnerability identified yesterday, the above patch and configuration setting is the fix.

In post 25 I commented that I'd download the patch today, confident that there would be a patch released within 24 hours. The above fulfills that expectation.

[zeugma]

ShadowAce, please post to the usual ping lists.

B2K, please see comment above.

[Terpfen]

It's amazing how the tech media will yield to a security researcher trying to look like he's doing something.

Mozilla's fixed at least 15, IIRC, various security flaws in the leadup to the 1.5 beta... but Secunia has to look busy and productive. Ugh.

[flashbunny]

well, mine was already set to false, but it's nice theyr'e getting this out there.

I loved the fact that bush2000 posted it. Of course, it was jsut to highlight the fact that 'no web browser is 100% secure', of course.

If this was an IE flaw, there wouldn't be a patch 4 days later. Roughly 14 days after it was announced, microsoft would issue a press release announce they would soon disclose their plans to announce a patch for the flaw which may or may not exist.

[martin_fierro]

placemarker

[USF]

marking...

[ShadowAce]

[clyde asbury]

Automatic Update This! bump.

[dennisw]

My Internet Explorer is up to date but always lets a Trojan enter my computer from a certain site. McAfee AV immediately detects and wipes it out. I have no such problem when I visit this site with Firefox and Opera. The Trojan never gets past those two browsers

[Golden Eagle]

In post 25 I commented that I'd download the patch today, confident that there would be a patch released within 24 hours.

That proves nothing other than you don't know the difference between a "patch" and a "workaround" then, since all your procedure does is disable the service. Then again, since an acutal patch still hasn't been released yet, you were wrong about that, too.